How-We-Helped-a-Small-Non-Profit-Agency-Achieve-PCI-DSS-Compliance

Your Path to Achieving PCI DSS Compliance is a Phone Call Away

I want to tell you about a small non-profit, level 4 merchant who struggled with achieving PCI DSS Compliance.

Two years ago they hired a local QSA company that provided some training and a summary of recommendations. This summary didn’t  provide an assessment of where they are vs where they needed to be for PCI Compliance purposes.

Nor did the summary include clear, actionable steps that this non-profit could implement to improve their compliance posture and stop the monthly fines for non-compliance.

After engaging with  Payment Card Assessments, we put together a statement of work that provided them with an affordable gap assessment for their cardholder data environments.

In our final set of deliverables we:

1. Outlined actionable steps to improve their processes and procedures, especially around stored payment card data.

2. Provided side by side analysis of v3.2.1 & v4.0 requirements

3. Recommended a path to maintaining continuous PCI Compliance for not just v3.2.1 but for v4.0 as well.

After they crossed the finish line and submitted their attestation of compliance for both their e-commerce and P2P environments, we received the following email:

You gave us more actionable steps than the QSA did. I believe we’ll be thanking you for the next 6 months."

Chris S. IT Infrastructure Manager

Achieving PCI DSS Compliance Is No Easy Feat

We’re here to help. Are you ready to tackle your PCI DSS Compliance responsibilities and establish a continuous PCI DSS Compliance program?

At Payment Card Assessments, we developed our 3 Pillars of PCI DSS Compliance Excellence and through these pillars, we provide thorough:

We can show you the way to creating and maintaining a PCI Compliance Program that your acquirer will love.

We bring a combined 20+ years of PCI DSS Compliance experience and well over 35 years each of IT Security and Project Management experience to the table. 

Learn more about our leadership team and schedule a call today!

Discover more from Payment Card Assesments

Subscribe to get the latest posts sent to your email.

Tags: , , , , , ,

Blog Posts

06 Mar 2023
Continuous PCI Compliance Program, PCI Report on Compliance

10 Critical Responsibilities of a PCI ISA

I remember when I was working as an IT Security Project Manager responsible for the implementation of 10 different security projects for the new. cardholder data at a Fortune 100 Company. They had a job posting for a PCI Compliance Program Manager and I thought, why not?

The job description looked easy enough. In fact, I flipped my resume over on a whim during lunch on a Friday. Got called by the internal recruiter within 20 minutes and was interviewed on Monday and hired by Wednesday.

I had no idea what was really in store for me. Nobody did.

Because nobody I interviewed with understood HOW to run a successful PCI DSS Compliance program for a level 1 merchant.

Leave a Reply

Discover more from Payment Card Assesments

Subscribe now to keep reading and get access to the full archive.

Continue reading